Overview

overview

10

Static

static

1

fc827d0192...9.xlam

windows7-x64

10

fc827d0192...9.xlam

windows10-2004-x64

1

Sharing

Copy URL Twitter E-mail

General

  • Target

    8596666635944f948a32b4247be77209.bin

  • Size

    1.1MB

  • Sample

    230816-b55v4sgb9w

  • MD5

    5487470b17d2a7e6d2da1d52b3f21585

  • SHA1

    702697b6a59e99fd2655df9f925f9c1367fa8cc9

  • SHA256

    ff65186068e880f278d84c0f63b3de37f626e90cdb251d789f2ce38cb6453eec

  • SHA512

    6f19ecdab8f6aeeb8437e2bdf7bd8cc9c097bfce8b4542ed6847016c913830ed6932b13dc51ff1cf45c38c07294ecf9fd12bbb58d7f2b3bcad0a94851a3fc886

  • SSDEEP

    24576:zgiWKCgtiEmnlb3qYAElkZVHnbBmhIrJ26JibbNIjgWBR:zg/gwE2B3qYmFl2bbijgWD

Score
10/10

Malware Config

Extracted

Language
ps1
Source
URLs
ps1.dropper

https://uploaddeimagens.com.br/images/004/563/621/original/universo_vbs.jpeg?1690931855
exe.dropper

https://uploaddeimagens.com.br/images/004/563/621/original/universo_vbs.jpeg?1690931855

Targets

    • Target

      fc827d0192f306a883a34b6e3a126ee398d98e6bb9b7cd6d549ed3e316d553c9.xlsx

    • Size

      1.1MB

    • MD5

      8596666635944f948a32b4247be77209

    • SHA1

      162c543cb26b552e7e283c89dc624cfa9458d929

    • SHA256

      fc827d0192f306a883a34b6e3a126ee398d98e6bb9b7cd6d549ed3e316d553c9

    • SHA512

      76ac60f6ca0b160bc5883cf143a2c080346454c6fad6895c8d6a2c8c964c1276a64aa481e2a18515acbb23981d7c6422e44768621f2cd0597f62300e044e6a3b

    • SSDEEP

      12288:akeG411Ie6y67lvHPK2JW9p/4hEK0zPKPw3nL+0RsUHoH0tT/M2ZZuj5/2jdcNot:aF56y6k2JMp4EK0EwvM0F/MDR2jGNot

    Score
    10/10

    • Blocklisted process makes network request

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks